We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.

If a previous version of Kaspersky Endpoint Security 10 for Windows is found, it is automatically removed. Information about activation and application settings are saved and applied during installation of the new version.

Step 2: The initial setup window

The initial setup window informs you that the installation of Kaspersky Endpoint Security 10 for Windows is about to begin. To continue the installation, click Next.

Step 3: End User License Agreement

Read the End User License Agreement. If you accept all the terms, check the box I accept the terms of the End User License Agreement.

Step 4: Select the installation type

Select an installation type:

Basic installation: The protection components Application Privilege Control and Vulnerability Monitor are installed.

Standard installation: Protection components and control components are installed.

Custom installation: Select the components to install and specify the directory in which to install the application.

Step 5: Custom installation

This screen only appears if you have selected Custom installation.

Select the Kaspersky Endpoint Security 10 for Windows protection components to be installed.

By default, all components are selected for installation except:

BadUSB Attack Prevention

Drive Encryption

File Encryption

Microsoft Bitlocker Manager

KATA Endpoint Sensor

File Anti-Virus is a mandatory component for installation.

Step 6: Select the destination folder

This step is only available if you selected Custom installation.

In this step, you can specify the path to the folder where the application will be installed. To select the folder, click Browse.

Step 8: Preparation for installation

If you are working with Citrix Provisioning Services and need to install drivers in Citrix PVS compatibility mode, select the checkbox Ensure compatibility with Citrix Provisioning Services.

So as not to add the path to the .exe file in the command line, select the checkbox Add the path to the file avp.com to the system variable %PATH%. If this option is enabled, to start Kaspersky Endpoint Security 10 for Windows from the command line you will only need to enter the name of the .exe file and the command to start the particular task.

Step 9: Application installation

Installing the application can take some time. Please wait for it to complete.

Using the Initial Configuration Wizard, activate Kaspersky Endpoint Security 10 for Windows and collect information about applications included in the operating system.

Local installation from the command line

You can install Kaspersky Endpoint Security 10 for Windows via the command line:

Remote installation via Kaspersky Security Center 10

Group tasks for managed devices located in the same administration group.

Tasks for selected devices which can be chosen from any group of managed devices.

For the remote installation task to run correctly on the client device on which Network Agent is not installed, the following ports must be opened: TCP 139 and 445, UDP 137 and 138. By default, these ports are opened on all client devices included in the domain. They are opened automatically by the remote deployment preparation utility, riprep.exe.

Assign task to an administration group . Assign the task to the existing group of managed computers.

Select the user account for running the task.

Configure the task schedule.

Enter the name for the task.

If necessary, select the checkbox Run task after Wizard finishes. Click Finish.

Run the task manually or wait until it runs according to the schedule.

Upon completion of the task, Kaspersky Endpoint Security 10 for Windows will be installed on managed computers.

Remote installation using Active Directory group policies

To install or update Kaspersky Endpoint Security 10 for Windows on devices in a doman, use group policies.

Installation through Active Directory group policies

Create a shared folder on a device in the domain and move the installation file in the MSI format to it.
To automatically deploy Kaspersky Endpoint Security 10 for Windows in a network, also copy the following files into the same folder:

Follow the remaining steps of the task wizard.
At the step Selecting an account to run the task, specify an account that has permissions for creating group policies.

Run the task manually or want until it runs according to the schedule.

After the task has run, the following are created in each domain the client devices belong to:

A group policy with the name Kaspersky_AK{GUID}

A security group, Kaspersky_AK{GUID} This group includes computers you selected when creating the remote installation task. The content of the security group defines the scope of the group policy.

Special considerations

Kaspersky Endpoint Security 10 for Windows is installed on client devices from the shared network folder, KL Share. In the Kaspersky Security Center 10. Installation folder, another folder is created containing the .msi file for the application being installed.

New devices will be added to the security after the task is run the next time. If the Run missed tasks check box is selected in the task schedule, the devices are added to the security group immediately.

Devices are deleted from the security group after the task is run the next time.

When a task is deleted from Active Directory, the respective policy, the respective link to the policy, and the respective security group are also deleted.

If you want to employ another installation scheme using Active Directory, you can configure the required settings manually. This may be necessary in the following cases:

When the administrator does not have permissions to make changes to the Active Directory of certain domains.

When the original installation package is stored on a separate network resource.

When it is necessary to link a group policy to specific Active Directory units.

There are some optional schemes for installation via Active Directory:

If installation is to be performed directly from the Kaspersky Security Center 10 shared folder, in the Active Directory group policy properties you must specify the .msi file located in the exec subfolder of the installation package folder for the required application.

If the installation package has to be located on another network resource, copy the contents of the exec subfolder to it.

Documentation

License agreement

Download

The installer contains encryption tools which use the AES cryptographic algorythm with the effective key length of 256 bit. The installer must be downloaded and used in accordance with local legislation.

Support limitations for Microsoft Windows 8.1

It is not possible to hide Kaspersky Endpoint Security 10 in the Start menu.

Supported virtual platforms

VMWare ESXi 5.5.0 1623387 Update 1

VMWare ESXi 5.5.0 2068190 Update 2

Microsoft Hyper-V 3.0 (Windows Server 2012)

Citrix XenServer 6.2

Citrix XenDesktop 7.5

Citrix Provisioning Server 7.1

Virtual platform support Issues and limitations

To enable Kaspersky Endpoint Security compatibility with Citrix PVS, perform installation with the Ensure compatibility with Citrix PVS option enabled. This option can be enabled in the Setup Wizard or using the command line parameter /pCITRIXCOMPATIBILITY=1. In case of remote installation, you must add the /pCITRIXCOMPATIBILITY=1 key into the kud file.

Installation of Kaspersky Endpoint Security 10 Service Pack 1 to a Microsoft Windows XP virtual machine running on Citrix XenDesktop is not supported.

Using Target Device for creating images of virtual machines with Kaspersky Endpoint Security 10 Service Pack 1 installed that run under Microsoft Windows XP and Microsoft Windows Vista is not supported.

Version 10.2.2.10535: Hardware and Software Requirements

For Kaspersky Endpoint Security 10 for Windows to work properly, the computer must meet the following requirements:

General requirements

Intel Pentium processor 1 GHz or faster

1 GB available RAM

2 GB of free hard disk space

Microsoft Internet Explorer 7.0 or later

Microsoft Windows Installer 3.0 or later

Internet connection for activating the application and for updating databases and application modules.

Operating systems

Microsoft Windows 8.1 Update Pro x86 / х64

Microsoft Windows 8.1 Update Enterprise x86 / х64

Microsoft Windows 8.1 Pro x86 / х64

Microsoft Windows 8.1 Enterprise x86 / х64

Microsoft Windows 8 Pro x86 / х64

Microsoft Windows 8 Enterprise x86 / х64

Microsoft Windows 7 Professional x86 / х64 SP1 and later

Microsoft Windows 7 Enterprise / Ultimate x86 / х64 SP1 and later

Microsoft Windows 7 Professional x86 / х64

Microsoft Windows 7 Enterprise / Ultimate x86 / х64

Microsoft Windows Vista x86 / х64 SP2 or later

Microsoft Small Business Server 2011 Essentials х64

Microsoft Small Business Server 2011 Standard х64

Microsoft Small Business Server 2008 Standard x64

Microsoft Small Business Server 2008 Premium x64

Microsoft Windows Server 2012 R2 Standard х64

Microsoft Windows Server 2012 Foundation / Standard х64

Microsoft Windows MultiPoint Server 2011 x64

Microsoft Windows Server 2008 R2 Standard х64 SP1 and later

Microsoft Windows Server 2008 R2 Standard х64

Microsoft Windows Server 2008 R2 Enterprise х64 SP1 and later

Microsoft Windows Server 2008 R2 Enterprise х64

Microsoft Windows Server 2008 R2 Foundation x64 SP1 and later

Microsoft Windows Server 2008 R2 Foundation x64

Microsoft Windows Server 2008 Standard х86 / х64 SP2 and later

Microsoft Windows Server 2008 Enterprise х86 / х64 SP2 and later

Microsoft Windows Server 2003 R2 Standard x86 / x64 SP2 and later

Microsoft Windows Server 2003 R2 Enterprise x86 / x64 SP2 and later

Microsoft Windows Server 2003 Standard x86 / x64 SP2

Microsoft Windows Server 2003 Enterprise x86 / x64 SP2 and later

Windows Embedded 8.0 Standard x64

Windows Embedded 8.1 Industry Pro x64

Windows Embedded Standard 7 with SP1 x86 / х64

Windows Embedded POSReady 7 x86 / х64

Special considerations and support limitations for embedded systems

It is recommended to run Microsoft Windows Embedded 8.0 Standard x64 (Standard 8) or Microsoft Windows Embedded 8.1 Industry x64 (Industry 8.1) on devices with 2GB or more of RAM.

Support limitations for Microsoft Windows 8.1

It is not possible to hide Kaspersky Endpoint Security 10 in the Start menu.

Supported virtual platforms

VMWare ESXi 5.5.0 1623387 Update 1

VMWare ESXi 5.5.0 2068190 Update 2

Microsoft Hyper-V 3.0 (Windows Server 2012)

Citrix XenServer 6.2

Citrix XenDesktop 7.5

Citrix Provisioning Server 7.1

Virtual platform support issues and limitations

To enable Kaspersky Endpoint Security compatibility with Citrix PVS, perform installation with the Ensure compatibility with Citrix PVS option enabled. This option can be enabled in the Setup Wizard or using the command line parameter /pCITRIXCOMPATIBILITY=1. In case of remote installation, you must add the /pCITRIXCOMPATIBILITY=1 key into the kud file.

Installation of Kaspersky Endpoint Security 10 Service Pack 1 to a Microsoft Windows XP virtual machine running on Citrix XenDesktop is not supported.

Using Target Device for creating images of virtual machines with Kaspersky Endpoint Security 10 Service Pack 1 installed that run under Microsoft Windows XP and Microsoft Windows Vista is not supported.

Version 10.3.3.275: Hardware and Software Requirements

For Kaspersky Endpoint Security 10 for Windows to work properly, the computer must meet the following requirements:

General requirements:

1 GHz or faster processor (with support of the SSE2 instruction set).

RAM:

1 GB (for 32-bit operating systems)

2 GB (for 64-bit operating systems)

2 GB of free hard disk space

Operating systems:

Microsoft Windows 10 Pro / Enterprise x86 / х64

For details about support for Microsoft Windows 10, please refer to this article.

For details about support for Microsoft Windows Server 2019 and Microsoft Windows Server 2016, please refer to this article.

Microsoft Windows Server 2012 R2 Standard х64

Microsoft Windows Server 2012 Foundation / Standard х64

Microsoft Small Business Server 2011 Standard х64

Microsoft Windows Server 2008 R2 Standard / Enterprise х64 SP1

Microsoft Windows Server 2008 Standard / Enterprise х64 SP2

Server platform support limitations

The ReFS file system is supported with limitations.

The Server Core and Cluster Mode configurations are not supported.

Disk encryption (Kaspersky FDE) and encryption of files on server platforms are not supported.

For other details regarding support for server platforms, please refer to this article.

Supported virtual platforms

VMWare ESXi 6.0.0 3620759

Microsoft Hyper-V 3.0

Citrix XenServer 7.0

Citrix XenDesktop 7.13

Citrix Provisioning Services 7.13

Issues and limitations:

Full disk encryption (FDE) on Hyper-V virtual machines is not supported.

Full disk encryption (FDE) and encryption of files and folders (FLE) are not supported on Citrix virtual platforms.

For Kaspersky Endpoint Security for Windows to be compatible with Citrix PVS, the Ensure compatibility with Citrix PVS option must be enabled during installation. This option can be enabled in the Setup Wizard or using the command line parameter /pCITRIXCOMPATIBILITY=1. In case of remote installation, you must add the /pCITRIXCOMPATIBILITY=1 key to the kud file.

For other details regarding support for virtual platforms, please refer to this article.